Acymailing vulnerability exploited in the wild

  • Jose
  • Topic Author
  • Offline
  • Administrator
  • Administrator
More
6 months 3 weeks ago - 6 months 3 weeks ago #9552 by Jose
Acymailing vulnerability exploited in the wild was created by Jose
Hi there,

A couple of days ago, Securitycheck Pro alerted about a new file in a site of a customer I manage. The file, named "thumbnail_91.png_.php", it was a php file hide behind a png extension:
 
After some further investigation, I discovered that attackers were using an unknow vulnerability in Acymailing to upload the file. I contacted the developers, who confirmed the vulnerability and a patch in a future version.

In the meantime, add the words "setNewThumbnail" and "setNewIconShare" to the url inspector to be protected, or edit the file /administrator/components/com_acym/controllers/mails/Edition.php and in the setNewThumbnail function near line 800, add this code:
Code:
exit;

It should look like this:
 

Update [05/07/23]: In older versions of Acymailing the path is /administrator/components/com_acym/controllers/mails.php

Regards,
Jose
Last edit: 6 months 3 weeks ago by Jose.

Please Log in or Create an account to join the conversation.

Time to create page: 0.140 seconds
Copyright © 2023 Securitycheck Extensions. All Rights Reserved.

This site is not affiliated with or endorsed by the Joomla! Project. It is not supported or warranted by the Joomla! Project or Open Source Matters. The Joomla! logo is used under a limited license granted by Open Source Matters, the trademark holder in the United States and other countries.

We may collect your IP address and your browser's User Agent string while using our site for security reasons. This information is retained only until we check you're not trying to hack our website.